Analysis
-
max time kernel
43s -
max time network
46s -
platform
windows7_x64 -
resource
win7-20220414-en -
submitted
21-05-2022 08:14
Static task
static1
Behavioral task
behavioral1
Sample
PI3999028 for payment.scr
Resource
win7-20220414-en
0 signatures
0 seconds
General
-
Target
PI3999028 for payment.scr
-
Size
2.5MB
-
MD5
f25dd2ec24d9430af72387e80ce988dd
-
SHA1
be6c0a33bbcf1834274d9376b529726e337a7926
-
SHA256
1a44b78d8bb505a1e28360971bb1adbdbe5d11484f59049210ef6b8734280359
-
SHA512
a07061ae78956a43ecd9f1fca7261b61f620786ada93da067cf61d1a592d124799499478d21e82ddb60aa8a53ad9d2e6542e272dd8fc73314ff30913e15042dc
Score
3/10
Malware Config
Signatures
-
Program crash 1 IoCs
Processes:
WerFault.exepid pid_target process target process 1336 1928 WerFault.exe PI3999028 for payment.scr -
Suspicious use of WriteProcessMemory 4 IoCs
Processes:
PI3999028 for payment.scrdescription pid process target process PID 1928 wrote to memory of 1336 1928 PI3999028 for payment.scr WerFault.exe PID 1928 wrote to memory of 1336 1928 PI3999028 for payment.scr WerFault.exe PID 1928 wrote to memory of 1336 1928 PI3999028 for payment.scr WerFault.exe PID 1928 wrote to memory of 1336 1928 PI3999028 for payment.scr WerFault.exe